Hi, With container integration of Teiid, the management of the Teiid is being re-written using the Microcontainer(MC) based Management framework and profile service[1]. Using this interface, JOPR [2] based tools can be configured to build new management consoles for Teiid. Prior releases Teiid provided role based security on Admin API methods, where access to each API method was controlled by a role they are specified with. Upon investigation of the MC's management framework and profile service, it seems like they do not provide hooks to define the fine grained role based security on individual management objects. However, all the management can be secured under single role. So, a user who has this admin role has access to all the services under the management api. This is change from before as how Teiid would behave in future releases in enforcing the security in management layer. If Teiid management tooling is integrated with RHQ (JON), then this tool can provide the additional fine grained security on top of this management api[3]. Although, this is gap in functionality from before, with the benefits of the new approach this seems to be OK. It is possible that in future releases of management framework they might introduce some of this functionality and Teiid can adopt at that time. If you have any concerns please let us know. Thanks Ramesh.. [1] http://community.jboss.org/docs/DOC-13723 [2] http://www.jboss.org/jopr [3] http://community.jboss.org/thread/146571